VYPR

ImageRecycle

by WordPress

CVEs (1)

  • CVE-2024-1339MedFeb 29, 2024
    risk 0.21cvss 4.3epss 0.00

    The ImageRecycle pdf & image compression plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.1.13. This is due to missing or incorrect nonce validation on the reinitialize function. This makes it possible for unauthenticated…